CalCom

01/17/2025

Pros, Take Note!
June 2024 release of CIS Controls 8.1 introduced powerful updates to help organizations stay ahead:

✅ New asset classes to better align with evolving infrastructures.
✅ The “Governance” security function, inspired by NIST CSF 2.0, for a more strategic approach to security management.

These updates are designed to enhance proactive defense and streamline compliance efforts. Now’s the time to review and implement these changes to strengthen your cybersecurity posture!

CIS Controls and everything you need to know about best practices regarding their implementation groups, safeguards and system hardening.

01/13/2025

RHEL Benchmark - Ensure IP forwarding is disabled. Learn why disabling IP forwarding is critical for RHEL compliance by following this benchmark to secure your Linux servers effectively.

Learn why disabling IP forwarding is critical for RHEL compliance. Follow this benchmark to secure your Linux servers effectively

12/24/2024

As businesses scale back operations or ramp up for seasonal traffic, servers can become a prime target for attackers. Here’s how to ensure your systems stay secure https://www.calcomsoftware.com/server-hardening-suite/

12/18/2024

Newyork city, are you ready for the May 1, 2025 deadline to comply with 23 NYCRR Part 500 Amendment requirements? We can help, find out how: https://www.calcomsoftware.com/23-nycrr-500-compliance-checklist/

23 NYCRR Part 500 is a clear checklist that covers the actions you need to take to achieve NYCRR Part 500 compliance.

12/09/2024

A newly discovered zero-day vulnerability in Windows exposes users across multiple Windows versions to credential theft. Discovered by 0patch researchers, this critical security flaw allows attackers to steal credentials through a deceptively simple method.

The latest vulnerability enables attackers to steal a user's NTLM credentials by luring them into opening a malicious file in Windows Explorer

10/30/2024

Happy Halloween ! Why leave your servers exposed to lurking dangers? Get in touch to see how our hardening solutions act as the ultimate shield against malicious spirits of the cyber world.

https://www.calcomsoftware.com/request-demo/

10/22/2024

Server compliance is key to ensuring your organization's security and efficiency. This blog post explores server compliance, its significance, and the repercussions of non-compliance. It also highlights the necessity of regular assessments to guarantee compliance and explores security standards and compliance frameworks that can assist organizations.

Check out the full article here: https://www.calcomsoftware.com/server-compliance/

Server compliance ensures data security, protecting consumer information, financial records, and healthcare data to meet privacy standards.

10/15/2024

Chag Sameach! 🍋🌿 Wishing everyone a joyful and peaceful Sukkot filled with blessings, unity, and the warmth of tradition. May your sukkah be a place of happiness, reflection, and connection with loved ones.

10/13/2024

has three versions – NTLMv1, NTLMv2 and NTLMv2 Session Security. Moving away from NTLM authentication and complying with the CIS benchmarks is challenging. It requires identifying which computers are using it and migrating to a more secure protocol without breaking anything. Become more knowledgeable about the 3 settings.

It seems like NTLM is here to stay. Learn about NTLM vulnerabilities and the differences between NTLMv1, NTLMv2 and NTLVv2 Session security.

10/04/2024

Wishing everyone a year full of sweetness, success, and purpose! Shanah Tovah U'Metukah – May it be a good and sweet year for all.

09/24/2024

Have you disabled the HTTP TRACE method in IIS yet?

Leaving this outdated diagnostic tool enabled can expose your server to Cross-Site Tracing (XST) attacks, allowing attackers to steal sensitive data like cookies and session tokens.

The primary function of the HTTP trace method is as a diagnostic tool used in web servers, however it has its venerabilities.

08/12/2024

Enable computer and user accounts to be trusted for delegation, a powerful Windows security feature used in enterprise environments.

Enable computer and user accounts to be trusted for delegation, a powerful Windows security feature used in enterprise environments.